Problem adding a name to nginx

Server
1

I've had an nginx server running with 4 hostnames (reverse proxy)... I wanted to add one more, but suddenly I get errors which I find weird...

Here are the error messages

  • The following errors were reported by the server:

    Domain: ebsco.meu.edu.lb
    Type: unknownHost
    Detail: No valid IP addresses found for ebsco.meu.edu.lb

    Domain: internal.meu.edu.lb
    Type: unknownHost
    Detail: No valid IP addresses found for internal.meu.edu.lb

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address.

However, testing nslookup everything is working... one of the records is an A record, the others are CNAME records...

internal.meu.edu.lb
Server: 8.8.8.8
Address: 8.8.8.8#53

Non-authoritative answer:
Name: internal.meu.edu.lb
Address: 185.125.158.24

ebsco.meu.edu.lb
Server: 8.8.8.8
Address: 8.8.8.8#53

Non-authoritative answer:
ebsco.meu.edu.lb canonical name = internal.meu.edu.lb.
Name: internal.meu.edu.lb
Address: 185.125.158.24

So, what am I doing wrong? What did I miss?

Thanks in advance!

2

There seems to be something wrong with AAAA (IPv6-address) records:

$ host -ta internal.meu.edu.lb
internal.meu.edu.lb has address 185.125.158.24

$ host -taaaa internal.meu.edu.lb
Host internal.meu.edu.lb not found: 3(NXDOMAIN)

If the domain does not have AAAA records, the answer should be:

internal.meu.edu.lb has no AAAA record

3

There is no AAAA record for any of our hosts… and when I run the command,
this is what I get regularly across several domains (and continents).

$ host -taaaa internal.meu.edu.lb

internal.meu.edu.lb has no AAAA record

Whose DNS is giving the incorrect answer? How do I solve this?

Thanks in advance,

Ron

There seems to be something wrong with AAAA (IPv6-address) records:

$ host -ta internal.meu.edu.lb http://internal.meu.edu.lb
internal.meu.edu.lb http://internal.meu.edu.lb has address
185.125.158.24

$ host -taaaa internal.meu.edu.lb http://internal.meu.edu.lb
Host internal.meu.edu.lb http://internal.meu.edu.lb not found:
3(NXDOMAIN)

If the domain does not have AAAA records, the answer should be:

internal.meu.edu.lb http://internal.meu.edu.lb has no AAAA record

4

This was a local unbound dns-cache.
If I ask the google caches, the answers are correct.

Nevertheless, I think authorative nameservers are somewhat mixed:

$ dig @8.8.8.8 internal.meu.edu.lb NS
;; AUTHORITY SECTION:
meu.edu.lb. 299 IN SOA dns0.zoneedit.com. zone.zoneedit.com. 1511867332 3600 600 1209600 300

So primary for this zone must be dns0.zoneedit.com.
Now ask him:

$ dig @dns0.zoneedit.com internal.meu.edu.lb A
;; ANSWER SECTION:
internal.meu.edu.lb. 300 IN A 185.125.158.24
;; AUTHORITY SECTION:
meu.edu.lb. 7200 IN NS ns6069.hostgator.com.
meu.edu.lb. 7200 IN NS ns6070.hostgator.com.

OK, this resolves correctly. But there are DNS delegations to two nameserver of hostgator. These should reply the same way.

$ dig @ns6069.hostgator.com. internal.meu.edu.lb A
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24901
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; WARNING: recursion requested but not available
;; QUESTION SECTION:
;internal.meu.edu.lb. IN A
;; AUTHORITY SECTION:
meu.edu.lb. 86400 IN SOA ns6069.hostgator.com. dnsadmin.gator3035.hostgator.com. 2016061305 86400 7200 3600000 86400

I have to admit: I don't know if this is valid or not.

1 Like
5

Found and solved!

Thanks!

6

So, what was the problem? It might be interesting for future troubleshooting.

7

The final problem was root zone .lb pointing to one server, and that server
having NS records pointing elsewhere!

Ron

8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.